4 matches found
CVE-2009-3841
HP Discovery & Dependency Mapping Inventory (DDMI) running on Windows versions 2.5x, 7.5x, and 7.60 is affected by CVE-2009-3841. The HP Security Bulletin SSRT090188 rev.1 states a remote execution of arbitrary code by an authorized user, with the base CVSS 2.0 score of 9.0. Patched versions are ...
CVE-2011-0890
Summary: CVE-2011-0890 affects HP DDMI versions 7.50, 7.51, 7.60, 7.61, 7.70, and 9.30. The issue arises because the Windows SNMP service is launched with its default configuration, allowing remote attackers to access read-only SNMP data via the public read community. Impact (as documented): Remo...
CVE-2009-1419
HP DDMI on Windows (DDMI 2.0.0–2.52, 7.50, 7.51) contains an authentication/validation flaw in the agent: it does not verify the SSL certificate from a known DDMI server before processing requests, enabling a remote, unauthenticated attacker to access DDMI agents and potentially disclose software...
CVE-2010-4114
HP DDMI (Discovery & Dependency Mapping Inventory) versions 2.5x, 7.5x, and 7.6x are affected by CVE-2010-4114, a Cross-Site Scripting (XSS) vulnerability allowing remote injection of scripts via unspecified vectors. The NVD entry lists CVSS v2 base score 4.3 (I: Partial, A: None) with network at...